Univention Bugzilla – Bug 55116
Description of univention-run-join-scripts options -dcaccount and -dcpwd misleading
Last modified: 2022-08-19 08:51:43 CEST
The description of the -dcaccount and -dcpwd are misleading: =========== Syntax: univention-run-join-scripts [options] [script, ...] Options: -dcaccount <account>: name of Primary Directory Node account -dcpwd <password file>: file with Primary Directory Node password =========== That should read "name of a member of the group `Domain Admins`". As it stands I read that as: Enter the name of the account of the Primary Directory Node. Likewise it says interactively: =========== root@replica:~# univention-run-join-scripts univention-run-join-scripts: runs all join scripts existing on local computer. copyright (c) 2001-2022 Univention GmbH, Germany Enter Primary Directory Node Account : Administrator Enter Primary Directory Node Password: ===========
> That should read "name of a member of the group `Domain Admins`" Maybe we should phrase it more carefully ("Username of a user with join permissions"), or doublecheck what attributes / group memberships are required for a joinuser: I know that the account has to be in "DC Backup Hosts" to allow the download of the server ssl certificates.